Insecure Extensive use of BinaryFormatter #17
Description
When attempting to implement this library, I have been getting the following error message:
Exception thrown: 'System.NotSupportedException' in System.Runtime.Serialization.Formatters.dll
BinaryFormatter serialization and deserialization are disabled within this application.
The implementation here is using an unsecure method of binary serialization for serializing event bodies, as described here:
https://docs.microsoft.com/en-gb/dotnet/standard/serialization/binaryformatter-security-guide
A list of "preferred alternatives" are described in the document.